safe6Sec/ShiroAndFastJson

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/safe6Sec/ShiroAndFastJson)

safe6Sec / ShiroAndFastJson

shiro加fastjson环境

☆148

Alternatives and similar repositories for ShiroAndFastJson

Users that are interested in ShiroAndFastJson are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

safe6Sec / Fastjson
View on GitHub
Fastjson姿势技巧集合
☆1,848Oct 20, 2023Updated 2 years ago
kezibei / fastjson_payload
View on GitHub
☆247Apr 15, 2026Updated last month
cckuailong / JNDI-Injection-Exploit-Plus
View on GitHub
80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background serv…
☆874Jun 24, 2024Updated last year
lemono0 / FastJsonParty
View on GitHub
FastJson全版本Docker漏洞环境(涵盖1.2.47/1.2.68/1.2.80等版本)，主要包括JNDI注入及高版本绕过、waf绕过、文件读写、原生反序列化、利用链探测绕过、不出网利用等。从黑盒的角度覆盖FastJson深入利用
☆1,216Jul 12, 2024Updated last year
pen4uin / java-memshell-generator
View on GitHub
一款支持自定义的 Java 内存马生成工具｜A customizable Java in-memory webshell generation tool.
☆2,207Aug 21, 2025Updated 9 months ago
Virtual machines for every use case on DigitalOcean • Ad
Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
woodpecker-framework / ysoserial-for-woodpecker
View on GitHub
给woodpecker框架量身定制的ysoserial
☆623Oct 26, 2022Updated 3 years ago
Lonely-night / fastjsonVul
View on GitHub
fastjson 80 远程代码执行漏洞复现
☆199Sep 7, 2022Updated 3 years ago
ethushiroha / JavaAgentTools
View on GitHub
用Java agent实现内存马等功能
☆201Jul 27, 2023Updated 2 years ago
smallfox233 / JsonExp
View on GitHub
fastjson漏洞批量检测工具
☆364Jul 12, 2024Updated last year
wgpsec / YongYouNcTool
View on GitHub
用友NC系列漏洞检测利用工具，支持一键检测、命令执行回显、文件落地、一键打入内存马、文件读取等
☆590Aug 19, 2023Updated 2 years ago
Hutt0n0 / ActiveMqRCE
View on GitHub
用java实现构造openwire协议，利用activeMQ < 5.18.3 RCE 回显利用内存马注入
☆290Nov 20, 2023Updated 2 years ago
c0olw / NacosRce
View on GitHub
Nacos JRaft Hessian 反序列化 RCE 加载字节码注入内存马不出网利用
☆851Jul 7, 2023Updated 2 years ago
novysodope / fupo_for_yonyou
View on GitHub
用友漏洞检测，持续更新漏洞检测模块
☆480Jul 21, 2025Updated 10 months ago
vulhub / java-chains
View on GitHub
Java Vulnerability Exploitation Platform
☆2,077Apr 29, 2026Updated last month
AI Agents on DigitalOcean Gradient AI Platform • Ad
Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
ReaJason / MemShellParty
View on GitHub
一款专注于 Java 主流 Web 中间件的内存马快速生成工具，致力于简化安全研究人员和红队成员的工作流程，提升攻防效率
☆1,501May 30, 2026Updated 2 weeks ago
7BitsTeam / LearningAgentShell
View on GitHub
7bits安全团队-《Java安全-记一次实战使用memoryshell》代码样例
☆19Nov 13, 2022Updated 3 years ago
su18 / hack-fastjson-1.2.80
View on GitHub
☆527Sep 16, 2022Updated 3 years ago
veo / wsMemShell
View on GitHub
WebSocket 内存马/Webshell，一种新型内存马/WebShell技术
☆1,493Apr 10, 2023Updated 3 years ago
Getshell / Mshell
View on GitHub
Memshell-攻防内存马研究
☆967Apr 13, 2025Updated last year
yuyan-sec / RedisEXP
View on GitHub
Redis 漏洞利用工具
☆944Jan 26, 2025Updated last year
KimJun1010 / WeblogicTool
View on GitHub
WeblogicTool，GUI漏洞利用工具，支持漏洞检测、命令执行、内存马注入、密码解密等（深信服深蓝实验室天威战队强力驱动）
☆1,791Nov 1, 2023Updated 2 years ago
4nNns / CVE-2022-22947
View on GitHub
Spring-Cloud-Spel-RCE
☆12Sep 16, 2022Updated 3 years ago
webraybtl / zentaopms_poc
View on GitHub
禅道相关poc
☆174Jun 20, 2024Updated last year
Deploy to Railway using AI coding agents - Free Credits Offer • Ad
Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
F6JO / RouteVulScan
View on GitHub
Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件
☆1,324Jun 29, 2024Updated last year
Chanzi-keji / chanzi
View on GitHub
"chanzi" is a simple and user-friendly JAVA SAST tool that utilizes taint analysis technology, includes built-in common vulnerability ru…
☆490Feb 1, 2026Updated 4 months ago
whocansee / FilelessAgentMemShell
View on GitHub
无需文件落地Agent内存马生成器
☆250May 30, 2024Updated 2 years ago
BeichenDream / GodzillaMemoryShellProject
View on GitHub
☆312Feb 27, 2025Updated last year
a1phaboy / FastjsonScan
View on GitHub
Fastjson扫描器，可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency
☆1,057Oct 7, 2022Updated 3 years ago
hosch3n / msmap
View on GitHub
Msmap is a Memory WebShell Generator.
☆584Apr 22, 2023Updated 3 years ago
SummerSec / ShiroAttack2
View on GitHub
shiro反序列化漏洞综合利用（仅限授权测试使用）
☆2,551Jun 4, 2026Updated last week
achuna33 / Memoryshell-JavaALL
View on GitHub
收集内存马打入方式
☆508May 20, 2022Updated 4 years ago
whwlsfb / cve-2022-22947-godzilla-memshell
View on GitHub
CVE-2022-22947 注入Godzilla内存马
☆211Apr 26, 2022Updated 4 years ago
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
UltimateSec / ultimaste-nuclei-templates
View on GitHub
极致攻防实验室 nuclei 检测 POC
☆643Aug 1, 2023Updated 2 years ago
LandGrey / spring-boot-upload-file-lead-to-rce-tricks
View on GitHub
spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
☆757Apr 14, 2021Updated 5 years ago
jayus0821 / swagger-hack
View on GitHub
自动化爬取并自动测试所有swagger接口
☆1,178Dec 1, 2025Updated 6 months ago
wyzxxz / jndi_tool
View on GitHub
JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行漏洞检测辅助工具
☆2,018May 21, 2024Updated 2 years ago
passer-W / shc_bypass
View on GitHub
内存加载shellcode绕过waf
☆207Jul 25, 2022Updated 3 years ago
Lotus6 / ConfluenceMemshell
View on GitHub
Confluence CVE 2021，2022，2023 利用工具，支持命令执行，哥斯拉，冰蝎内存马注入
☆558Feb 1, 2024Updated 2 years ago
hosch3n / FastjsonVulns
View on GitHub
[fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload
☆91Sep 2, 2022Updated 3 years ago